chore(deps): update docker.io/library/golang docker tag to v1.21.5 (main) #5975

	name: codeql

	on:
	pull_request:
	branches:
	- main
	paths-ignore:
	- 'docs/**'
	push:
	branches:
	- main
	paths-ignore:
	- 'docs/**'
	schedule:
	- cron: "45 6 * * 3"

	permissions: read-all

	jobs:
	check_changes:
	name: Deduce required tests from code changes
	if: ${{ github.event_name == 'pull_request' }}
	runs-on: ubuntu-22.04
	outputs:
	go-changes: ${{ steps.go-changes.outputs.src }}
	steps:
	- name: Checkout code
	if: ${{ !github.event.pull_request }}
	uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
	with:
	persist-credentials: false
	- name: Check code changes
	uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
	id: go-changes
	with:
	base: ${{ github.event.pull_request.base.sha }}
	ref: ${{ github.event.pull_request.head.sha }}
	filters: \|
	src:
	- .github/workflows/lint-codeql.yaml
	- '*/.go'
	- 'go.mod'
	- 'go.sum'

	analyze:
	needs: check_changes
	if: ${{ needs.check_changes.outputs.go-changes == 'true' \|\| github.event_name != 'pull_request' }}
	runs-on: ubuntu-22.04
	permissions:
	security-events: write
	steps:
	- name: Checkout repo
	uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
	with:
	persist-credentials: false
	fetch-depth: 1
	- name: Install Go
	uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
	with:
	go-version-file: 'go.mod'
	- name: Initialize CodeQL
	uses: github/codeql-action/init@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
	with:
	languages: go
	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8

Provide feedback